User profile authorizers: (v5.6)
Some authorizers only apply on the user profile:
1) Roles/permissions
To check roles and permissions on the user profile, you first need to compute them with an AuthorizationGenerator
.
-
RequireAnyRoleAuthorizer
checks that a user profile has at least one of the expected roles or at least one role if none is defined -
RequireAllRolesAuthorizer
checks that a user profile has all the expected roles -
RequireAnyPermissionAuthorizer
checks that a user profile has at least one of the expected permissions or at least one permission if none is defined -
RequireAllPermissionsAuthorizer
checks that a user profile has all the expected permissions
2) Authentication levels
-
IsAnonymousAuthorizer
checks that the user is anonymous (no profile or anAnonymousProfile
) -
IsAuthenticatedAuthorizer
checks that the user has the profile which is not anAnonymousProfile
-
IsFullyAuthenticatedAuthorizer
checks that the user is authenticated, but not remembered (isRemembered
method) -
IsRememberedAuthorizer
checks that the user is authenticated and only remembered (isRemembered
method)
3) Others
-
CheckProfileTypeAuthorizer
checks the current profile type of the authenticated user -
RequireAnyAttributeAuthorizer
checks that the current profile has the appropriate attribute